CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-50070
https://notcve.org/view.php?id=CVE-2023-50070
Sourcecodester Customer Support System 1.0 has multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_ticket via department_id, customer_id, and subject. Sourcecodester Customer Support System 1.0 tiene múltiples vulnerabilidades de inyección SQL en /customer_support/ajax.php?action=save_ticket a través de department_id, customer_id y subject. • https://github.com/geraldoalcantara/CVE-2023-50070 https://medium.com/%40geraldoalcantarapro/cve-2023-50070-1f58c2a64b1c • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-50071 – Customer Support System 1.0 SQL Injection
https://notcve.org/view.php?id=CVE-2023-50071
Sourcecodester Customer Support System 1.0 has multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_department via id or name. Sourcecodester Customer Support System 1.0 tiene múltiples vulnerabilidades de inyección SQL en /customer_support/ajax.php?action=save_department mediante id o name. Customer Support System version 1.0 suffers from a remote SQL injection vulnerability in /customer_support/ajax.php. • https://github.com/geraldoalcantara/CVE-2023-50071 https://medium.com/%40geraldoalcantarapro/cve-2023-50071-a20767cb3c7b • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •